Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
2421	5.4	警告 Network	Stack Ideas Private Limited.	EasyDiscuss	Stack Ideas Private Limited.のEasyDiscussにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-21623	2026-02-2 19:36	2026-01-16	Show	GitHub Exploit DB Packet Storm

2422	8.8	重要 Adjacent	UI	UniFi Protect	UIのUniFi Protectにおける認証に関する脆弱性	CWE-287 不適切な認証	CVE-2026-21633	2026-02-2 19:36	2026-01-5	Show	GitHub Exploit DB Packet Storm

2423	6.5	警告 Adjacent	UI	UniFi Protect	UIのUniFi Protectにおけるバッファエラーの脆弱性	CWE-119 バッファエラー	CVE-2026-21634	2026-02-2 19:36	2026-01-5	Show	GitHub Exploit DB Packet Storm

2424	2.7	低 Network	Aquq Platform	Revive Adserver	Aquq PlatformのRevive Adserverにおける書式文字列に関する脆弱性	CWE-134 書式文字列の問題	CVE-2026-21640	2026-02-2 19:36	2026-01-20	Show	GitHub Exploit DB Packet Storm

2425	6.5	警告 Network	Aquq Platform	Revive Adserver	Aquq PlatformのRevive Adserverにおける認可に関する脆弱性	CWE-285 不適切な認可	CVE-2026-21641	2026-02-2 19:36	2026-01-20	Show	GitHub Exploit DB Packet Storm

2426	6.1	警告 Network	Aquq Platform	Revive Adserver	Aquq PlatformのRevive Adserverにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2026-21642	2026-02-2 19:36	2026-01-20	Show	GitHub Exploit DB Packet Storm

2427	6.5	警告 Network	Discourse	Discourse	Discourseにおける認証の欠如に関する脆弱性	CWE-862 認証の欠如	CVE-2026-21865	2026-02-2 19:36	2026-01-28	Show	GitHub Exploit DB Packet Storm

2428	5.4	警告 Network	オラクル	Oracle Utilities Framework	オラクルのOracle Utilities Frameworkにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-21924	2026-02-2 19:36	2026-01-20	Show	GitHub Exploit DB Packet Storm

2429	4.8	警告 Network	オラクル	JDK Oracle GraalVM for JDK JRE Oracle GraalVM	オラクルのOracle GraalVM等の複数製品における不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-21925	2026-02-2 19:36	2026-01-20	Show	GitHub Exploit DB Packet Storm

2430	5.8	警告 Local	オラクル	Oracle Solaris	オラクルのOracle Solarisにおける不特定の脆弱性	CWE-noinfo 情報不足	CVE-2026-21927	2026-02-2 19:36	2026-01-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348891	-	freebsd	freebsd	FreeBSD 4.1.1 and earlier, and possibly other BSD-based OSes, uses an insufficient random number generator to generate initial TCP sequence numbers (ISN), which allows remote attackers to spoof TCP c…	NVD-CWE-Other	CVE-2000-0916	2008-09-6 05:22	2000-12-19	Show	GitHub Exploit DB Packet Storm

348892	-	kde	kvt	Format string vulnerability in kvt in KDE 1.1.2 may allow local users to execute arbitrary commands via a DISPLAY environmental variable that contains formatting characters.	NVD-CWE-Other	CVE-2000-0918	2008-09-6 05:22	2000-12-19	Show	GitHub Exploit DB Packet Storm

348893	-	david_harris	pegasus_mail	Buffer overflow in Pegasus Mail 3.11 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long email message containing binary data.	NVD-CWE-Other	CVE-2000-0931	2008-09-6 05:22	2000-12-19	Show	GitHub Exploit DB Packet Storm

348894	-	xfree86_project	xlib	Buffer overflow in xlib in XFree 3.3.x possibly allows local users to execute arbitrary commands via a long DISPLAY environment variable or a -display command line parameter.	NVD-CWE-Other	CVE-2000-0976	2008-09-6 05:22	2000-12-19	Show	GitHub Exploit DB Packet Storm

348895	-	nevis_systems	all-mail	Buffer overflow in All-Mail 1.1 allows remote attackers to execute arbitrary commands via a long "MAIL FROM" or "RCPT TO" command.	NVD-CWE-Other	CVE-2000-0985	2008-09-6 05:22	2000-12-19	Show	GitHub Exploit DB Packet Storm

348896	-	freebsd	freebsd	Format string vulnerability in top program allows local attackers to gain root privileges via the "kill" or "renice" function.	NVD-CWE-Other	CVE-2000-0998	2008-09-6 05:22	2000-12-11	Show	GitHub Exploit DB Packet Storm

348897	-	openbsd	openssh	Format string vulnerabilities in OpenBSD ssh program (and possibly other BSD-based operating systems) allow attackers to gain root privileges.	NVD-CWE-Other	CVE-2000-0999	2008-09-6 05:22	2000-12-11	Show	GitHub Exploit DB Packet Storm

348898	-	palm	palm_os	PalmOS 3.5.2 and earlier uses weak encryption to store the user password, which allows attackers with physical access to the Palm device to decrypt the password and gain access to the device.	NVD-CWE-Other	CVE-2000-1008	2008-09-6 05:22	2000-12-11	Show	GitHub Exploit DB Packet Storm

348899	-	freebsd	freebsd	The catopen function in FreeBSD 5.0 and earlier, and possibly other OSes, allows local users to read arbitrary files via the LANG environmental variable.	NVD-CWE-Other	CVE-2000-1012	2008-09-6 05:22	2000-12-11	Show	GitHub Exploit DB Packet Storm

348900	-	freebsd	freebsd	The setlocale function in FreeBSD 5.0 and earlier, and possibly other OSes, allows local users to read arbitrary files via the LANG environmental variable.	NVD-CWE-Other	CVE-2000-1013	2008-09-6 05:22	2000-12-11	Show	GitHub Exploit DB Packet Storm